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AMENDMENTS TO THE SPECIFICATION 



Please araefid the sections of the specification as follows: 
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BACKGROUND OF THE INVENTION 



4-. F iel d of th e Inv e ntion 

The present i nv e nt i on disclosure relates to the field of computer system 
manufacturing and computer system operations. More specifically, this i nv e ntion 
disclosure relates to providing computer system security. 



Or. D e scr i ption of Re l ated Art 




In accordance with the present i nv e ntion disclosure , a system and method is 
presented for preventing a computer system user from using the computer system or 
otherwise interfering with the computer system*s operation during the POST procedure, 
unless a particular access procedure is performed. 
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BRIEF DESCRIPTION OF THE DRAWINGS 

The present invent i on disclosure may be better understood, and its numerous 
objects, features and advantages made apparent to those skilled in the art by 
referencing the accompanying drawings. The use of the same reference number 
throughout the several figures designates a like or similar element. 

Figure 1 shows a block diagram of an exemplary computer system. 

Figure 2 shows a flow chart of the execution of a basic input/output system 
("BIOS"), including a power-on self test ("POST") procedure. 

Figure 3 shows a flow chart of af^ one embodiment of the inv e ntion . 

DETAILED DESCRIPTION 

The following sets forth a detailed description of a mode for carrying out the 
i nvention disclosure . The description is intended to be illustrative of the invention and 
should not be takenjo be limiting. ^ 
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Figure 2 shows a flow chart of an exemplary technique for the execution of a 
basic input/output system ("BIOS"), including a POST procedure. It should be noted, 
however, that though the subject i nv e nt i on disclosure is useful in the context of BIOS 
execution, and particularly POST, specific aspects of BIOS, or POST, are not part of the 
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invention. The i nvont i on disclosure is applicable to various versions of BIOS or POST 
performance. After the system's power is switched on (step 210), the BIOS code 201 
begins to execute, providing for the preparation of computer system 100 for use (step 
220). Some or all of the BIOS procedure is generally also executed if computer system 
100 is re-booted without the power being switched off and then on again, but this 
"^"^J feature is not shown in Figure 2. Execution of the BIOS procedure generally includes 
^* the execution of a POST procedure (step 230). The POST procedure is a set of 

routines that tests the components of computer system 100 for proper connection and 
operation. If the POST finds a problem, computer system 100 generally alerts the user 
via aural and/or visual messages (steps 240 and 245). If the POST is successful, the 
BIOS procedure continues, passing control to a bootstrap loader (steps 240 and 250). 
If the problem is not critical to the operation of computer system 100. the BIOS 
procedure continues (steps 247 and 250). If the problem is critical to the operation of 
computer system 100, the BIOS procedure terminates (steps 247 and 255). 
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Figure 3 shows a flow chart of an embodiment of the i nv e nt i on disclosure . The 
inv e ntion disclosure presented advantageously allows a secure boot to operate in 
connection with devices other than an I/O controller (an example of which is illustrated 
in Figure 1 , the LPC super I/O controller 187), the other devices including, for example. 
Small Computer Systems Interface ("SCSI") cards. Processor 1 10 is initially instructed 
to ignore all inputs except for a pre-selected input (step 310). In an aspect of this 
embodiment, processor 1 10 is initially instructed to ignore all inputs except for a pre- 
selected input from all I/O devices included in or coupled to computer system 100, 
including I/O devices coupled to computer system 100 remotely via, e.g., telephone 
circuits, intranets, local area networks, and the Internet. 
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The specific choice of inputs allowed to be processed by processor 1 10 as a 
result of the steps depicted in Figure 3, such inputs allowing specific functions to be 




performed by an authorized user, is a matter for the suppliers of an embodiment of the 
method and system of computer security during the POST procedure presented. 
Accordingly, any specific set of such allowed inputs is within the scope of the present 



invontion disclosure . In an embodiment, an authorized user enters a password (in one 
aspect, within a pre-defined period of time) to gain access to the procedure that allows 
enablement and disablement and, once access is granted, enables or disables the 
method or system of computer security presented. In an aspect of the embodiment, the 
user who enables computer security is allowed to select the functions to which an 
authorized user completes the steps depicted in Figure 3. These functions include, but 
are not limited to, those functions discussed above in connection with Figure 2: 
prevention of entry into system setup and of ability the change system settings; 
prevention of ability to request special boot functions, such as utility partition booting; 
prevention of ability to halt or omit POST functions; prevention of ability to reboot 
computer system 100 (sometimes referred to as "soft reset"); prevention of ability to 
switch off power to computer system 100 (short of physically disconnecting computer 
system 100 from its power supply, such as by unplugging computer system 100 from its 
alternating current power supply); and prevention of entry by an unauthorized user into 
OPROM utilities for SCSI, and/or RAID controllers, and/or NICs and/or virtual controllers 
that emulate controllers normally found within example computer system 100. 
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While particular embodiments of the present i nv e nt i on disclosure have been 
shown and described, it will be obvious to those skilled in the art that, based upon the 
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teaching herein, changes and modifications may be made without departing from this 
. A / J i nv e ntion disclosure and its broader aspects and, therefore, the appended claims are to 
QOlfVl encompass within their scope all such changes and modifications as are within the true 
spirit and scope of this i nvent i on disclosure . Furthermore, it is to be understood that the 
- disclosure is solely defined by the appended claims. 
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